Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/8b400d-1e8e-40da-b1d6-a6541ceb1e43/1/1-CsR2GyXBHcfAAGxFLZmNPXs-vw.roa
File: 1-CsR2GyXBHcfAAGxFLZmNPXs-vw.roa (raw, json)
Hash identifier: fE8RQWt1iWidUZr+7ql61Rk3+9HImFsITY9LFOLEWTk=
Subject key identifier: F8:2B:11:D8:6C:97:04:77:1F:00:01:B1:14:B6:66:34:F5:EC:FA:FC
Certificate issuer: /CN=5232d44d9e08c873db35c02151ca44ae54b4b8af
Certificate serial: 018CC3B736169C0D02737923A653BD070276
Authority key identifier: 52:32:D4:4D:9E:08:C8:73:DB:35:C0:21:51:CA:44:AE:54:B4:B8:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UjLUTZ4IyHPbNcAhUcpErlS0uK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/8b400d-1e8e-40da-b1d6-a6541ceb1e43/1/1-CsR2GyXBHcfAAGxFLZmNPXs-vw.roa
Signing time: Mon 01 Jan 2024 06:30:13 +0000
ROA not before: Mon 01 Jan 2024 06:30:13 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 208989
IP address blocks: 45.12.8.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:b7:36:16:9c:0d:02:73:79:23:a6:53:bd:07:02:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5232d44d9e08c873db35c02151ca44ae54b4b8af
Validity
Not Before: Jan 1 06:30:13 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f82b11d86c9704771f0001b114b66634f5ecfafc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:eb:58:30:3e:b1:af:a5:8c:4e:93:5a:dd:44:
20:a1:c6:c2:45:31:df:13:d6:e8:2f:9e:7b:b5:fb:
cf:7e:c6:87:b0:e6:67:5b:4f:ca:1e:30:51:ab:bb:
de:f1:08:ff:64:39:96:f0:ec:da:da:4d:a9:c7:ce:
c0:ed:29:33:a4:f1:af:9c:97:cb:03:c5:70:c1:0a:
a2:da:e3:d5:ea:0d:95:55:53:0c:42:45:1d:9e:c4:
dd:bd:73:67:6c:1c:e5:30:1d:62:8f:ff:fc:8b:da:
7b:66:e2:b5:13:ba:cd:14:24:1a:9f:97:d5:6a:19:
63:56:29:5f:ca:15:6a:f3:30:50:36:5e:86:38:ff:
d0:c2:d9:57:90:fa:c8:04:18:69:eb:29:4d:00:1c:
dd:4f:26:8d:4e:a7:54:0a:41:b5:ff:29:94:c5:f0:
df:2c:8a:48:be:e0:d9:ac:0d:87:48:03:35:a8:c4:
5d:dc:47:d6:6a:cc:47:79:d9:27:7f:99:24:18:34:
f2:d3:46:28:98:ab:61:d2:93:33:8d:8f:5a:c4:0e:
d4:80:ea:ea:68:61:d5:ad:91:8e:16:ca:59:9c:f1:
6f:a1:1b:be:75:0c:37:fa:c2:06:c6:97:57:ce:33:
7c:b1:40:7b:20:f9:7f:c7:59:01:be:f0:47:a2:46:
f6:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:2B:11:D8:6C:97:04:77:1F:00:01:B1:14:B6:66:34:F5:EC:FA:FC
X509v3 Authority Key Identifier:
keyid:52:32:D4:4D:9E:08:C8:73:DB:35:C0:21:51:CA:44:AE:54:B4:B8:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UjLUTZ4IyHPbNcAhUcpErlS0uK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/8b400d-1e8e-40da-b1d6-a6541ceb1e43/1/1-CsR2GyXBHcfAAGxFLZmNPXs-vw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/8b400d-1e8e-40da-b1d6-a6541ceb1e43/1/UjLUTZ4IyHPbNcAhUcpErlS0uK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.12.8.0/22
Signature Algorithm: sha256WithRSAEncryption
3d:21:83:28:d4:20:19:28:e5:b8:78:a7:da:5e:c1:be:c4:92:
e9:cd:ac:b5:89:0a:7a:a7:80:61:1c:bc:d2:e0:43:db:e5:27:
39:3b:a0:2f:55:3e:95:e4:d7:7b:52:ca:f0:d4:1d:b9:33:73:
dd:79:57:b1:0a:61:ba:f8:82:a9:76:97:ef:de:40:44:2e:94:
b5:17:0d:49:41:18:63:39:46:58:e4:61:2f:52:2e:e0:a5:12:
ed:45:d5:53:8d:9f:4a:2e:33:d2:44:89:73:2e:b4:01:0f:e8:
21:d3:3c:f8:62:c4:ee:cc:89:b9:5b:6f:e6:3e:3c:5a:48:17:
77:fb:12:00:b6:8f:6a:ae:8d:b1:fe:fe:78:64:f5:02:be:5c:
78:15:77:6a:cf:64:3b:88:3d:8e:d5:71:05:7c:5d:38:2e:d9:
29:0b:38:eb:1a:ac:4d:ae:bb:57:d2:b4:ce:ff:75:1f:ba:54:
43:d6:07:fe:93:7b:78:64:4c:0c:cd:32:a7:eb:f7:70:ce:5b:
68:de:b9:7b:ef:a0:aa:7b:28:be:ca:02:4c:6a:ed:e4:55:04:
24:2e:cc:94:a4:67:e8:db:c0:ce:68:46:86:bf:62:c9:48:8c:
c5:83:08:f8:4b:1e:ac:af:8d:b2:a9:0b:17:17:5c:1e:41:b1:
ba:e7:fe:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:27:04 2024 by rpki-client on console.sobornost.net